Free YouTube views likes and subscribers? Easily!
AnimalsBabiesBeautifulCatsCreativeCute Dogs EducationalFunnyHeartwarmingHolidaysIncredible
Inspirational Interesting LoveMusicNatureOopsPerformancePranksScienceSportsTechnologyUnexpected
 Best Kitten Show  Cute Puppies  Watch Best Covers
Get Free YouTube Subscribers, Views and Likes

Windows Registry analysis using Autopsy - CAINE - 08

Follow
BlueMonkey 4n6

CAINE Forensics series 08 Windows Registry analysis using Autopsy

♥ SUBSCRIBE for more videos: https://www.youtube.com/bluemonkey4n6...



Difficulty Level: Medium
Prerequisites:
basic understanding of the Windows Registry,
basic understanding of the Autopsy framework of forensic tools

In this video we will look at using Autopsy to answer some basic questions when performing a digital forensic analysis on a computer.

Video timeline
00:00 intro
00:48 Autopsy setup
03:13 Question 1: What operating system was used on the computer?
04:16 Question 2. When was the install date?
04:43 Question 3. Who is the registered owner?
04:58 Question 4. What is the computer name?
05:19 Question 5. Who was the last user to logon into PC?
06:01 Question 6. What is the account name of the user who mostly uses the computer?
06:24 Question 7. When was the last recorded computer shutdown date/time?
09:49 Question 8. What is the timezone settings?
10:28 Question 9. Explain the information of network interface(s) with an IP address assigned by DHCP.
11:39 Question 10. List all accounts in OS except the system accounts: Administrator, Guest, systemprofile, LocalService,
12:14 Question 11. What applications were installed by the suspect after installing OS?
13:01 Question 12. List external storage devices attached to PC.
13:47 recap




⭕ For other videos about the Linux command line, see other videos in this series:    • CAINE forensics tutorials  

Linux distro:
CAINE linux (https://www.cainelive.net). Using CAINE v12 beta

Virtualization software:
Virtual Box (http://virtualbox.org)

Digital Forensics platform:
Autopsy v4.17.0 (https://www.basistech.com)


Images used for examination:
Computer Forensic Reference Data Sets (CFReDS) from NIST (https://www.cfreds.nist.gov/data_leak...)


This course was designed to provide information on how to use the tools on the CAINE forensics distro to accomplish tasks in the basic steps in digital forensics: Preservation of evidence (write blocking), extraction of data (imaging), Analysis, and Reporting.  This course covers the tools that allow users to acquire data (logical and physical), forensically analyze data, hashing datasets, perform malware analysis, memory forensics, mobile forensics, network forensics, open source intelligence (OSINT), and timeline analysis. 

This video will look at using Autopsy’s built in Ingest modules to access and analyze the Windows Registry.


#DFIR #windowsregistry #autopsy

posted by muhochlq


CAINE 09 DB Browser for SQLite
CAINE 09 DB Browser for SQLite
Disk Analysis with Autopsy | HackerSploit Blue Team Training
Disk Analysis with Autopsy | HackerSploit Blue Team Training
CAINE 03 Autopsy basics tutorial
CAINE 03 Autopsy basics tutorial
Autopsy Forensic Acquisition Tool | Digital Forensics Investigation | Autopsy Tutorial
Autopsy Forensic Acquisition Tool | Digital Forensics Investigation | Autopsy Tutorial
RECOVERING FILES with Autopsy (PicoCTF 2022 #47 'operationoni')
RECOVERING FILES with Autopsy (PicoCTF 2022 #47 'operationoni')
Intro to Windows Forensics: Windows Registry Artifacts TryHackMe Walkthrough
Intro to Windows Forensics: Windows Registry Artifacts TryHackMe Walkthrough
Windows Registry As Fast As Possible
Windows Registry As Fast As Possible
CAINE 02 forensic imaging and cloning using Guymager tutorial
CAINE 02 forensic imaging and cloning using Guymager tutorial
NEVER install these programs on your PC... EVER!!!
NEVER install these programs on your PC... EVER!!!
Processing and analysis of disk images with Autopsy 4 default modules
Processing and analysis of disk images with Autopsy 4 default modules
CAINE 05 DDRescueGUI
CAINE 05 DDRescueGUI
Introduction to Memory Forensics with Volatility 3
Introduction to Memory Forensics with Volatility 3
Windows Forensics Part 1 | Registry Forensics | TryHackMe
Windows Forensics Part 1 | Registry Forensics | TryHackMe
Digital Forensic Investigation Case in OpenText EnCase 23 | Part 1 How to add evidence files
Digital Forensic Investigation Case in OpenText EnCase 23 | Part 1 How to add evidence files
Windows Memory Analysis
Windows Memory Analysis
TryHackMe: Disk Analysis & Autopsy
TryHackMe: Disk Analysis & Autopsy
Windows Forensics: Registry Investigations, Data Acquisition / Security Analyst Training
Windows Forensics: Registry Investigations, Data Acquisition / Security Analyst Training
Introduction to Windows Forensics
Introduction to Windows Forensics
Computer Forensics: Using Autopsy To Investigate a Local Hard Drive
Computer Forensics: Using Autopsy To Investigate a Local Hard Drive
Forensic Analysis With Autopsy in Kali Linux
Forensic Analysis With Autopsy in Kali Linux
Recommended
Tribute to Michael Jackson
Tribute to Michael Jackson
02:28
the NEED for Acceptance Will Make You INVISIBLE - Jim Carrey
the NEED for Acceptance Will Make You INVISIBLE - Jim Carrey
05:39
Alternative Way To Use Toilet Paper Becomes A Super Prank
Alternative Way To Use Toilet Paper Becomes A Super Prank
03:12
Mario Demonstrates Amazing Skating Skills!
Mario Demonstrates Amazing Skating Skills!
02:21
How to Make a Cake for Your Little Princess
How to Make a Cake for Your Little Princess
25:05
Keep Calm & Hide The Truth From Your Friend!
Keep Calm & Hide The Truth From Your Friend!
00:27
Sushi Bar For Best Pets Ever!
Sushi Bar For Best Pets Ever!
04:04
How The Battle Of The Five Armies Should Have Ended
How The Battle Of The Five Armies Should Have Ended
05:28
AnimalsBabiesBeautifulCatsCreativeCute Dogs EducationalFunnyHeartwarmingHolidaysIncredible
Inspirational Interesting LoveMusicNatureOopsPerformancePranksScienceSportsTechnologyUnexpected
 Kitten Videos  Funny Puppies  Cover Songs
doovi © | 2014-2018
Subscriber Count Live
Free Subscribers at YouTube
Follow us at Facebook
Terms of Service
Follow us at YouTube
Powered by